Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS211407.roa
File: AS211407.roa (raw, json)
Hash identifier: Yl7FnaKw3zekmKqplcfNBR5yW/as8S3c59zou+8PCJw=
Subject key identifier: 64:A9:19:85:27:78:35:17:58:14:C5:9E:CD:6D:9A:DC:F0:5E:2C:12
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 6D55F97D340573CC955B62FA8C03FAC18B1CED06
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS211407.roa
Signing time: Thu 27 Mar 2025 02:53:59 +0000
ROA not before: Thu 27 Mar 2025 02:48:59 +0000
ROA not after: Thu 26 Mar 2026 02:53:59 +0000
asID: 211407
IP address blocks: 191.101.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:55:f9:7d:34:05:73:cc:95:5b:62:fa:8c:03:fa:c1:8b:1c:ed:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Mar 27 02:48:59 2025 GMT
Not After : Mar 26 02:53:59 2026 GMT
Subject: CN=64A91985277835175814C59ECD6D9ADCF05E2C12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:2c:cb:af:d7:90:94:85:83:da:83:3f:4a:04:
e4:9f:80:5a:93:f5:71:20:c0:12:e7:67:0c:35:64:
30:5e:71:2c:0b:c6:32:7b:47:0f:bb:93:cb:1b:eb:
a8:e8:cc:75:8b:2c:07:ee:07:20:4c:ae:f2:0e:a6:
3c:8f:3a:ce:37:bb:fb:fc:f7:a1:b5:b7:ef:35:92:
0a:a6:5a:ac:1d:87:e8:a3:89:09:ea:ef:a5:ff:0c:
3b:31:56:af:a7:f4:2a:04:7b:25:a3:d7:d3:6b:56:
e1:9f:81:f0:d7:8d:1f:84:1b:87:ef:cd:e1:25:9c:
48:37:9a:7b:91:e2:78:67:a9:63:ec:99:9d:2a:72:
2b:79:2c:61:51:dc:68:36:f3:23:99:f0:d5:46:0b:
ee:c9:8a:0a:2d:e4:5d:38:eb:a0:c1:f0:20:d7:9c:
dc:4d:c5:6b:ff:88:1e:db:bb:6f:d3:0c:43:55:fa:
f9:2e:b7:e2:09:62:37:28:3e:de:d7:3c:69:ea:06:
d1:2a:b0:a5:94:96:b8:5d:1d:70:e2:ff:2c:63:67:
b5:31:b6:84:5f:ba:6f:bf:ca:39:ef:8a:77:ef:7d:
db:fc:35:e1:f8:69:5c:86:8d:c3:e3:6c:2c:39:f0:
07:72:36:33:66:0b:a2:b2:d5:58:e7:ec:af:0b:61:
e0:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:A9:19:85:27:78:35:17:58:14:C5:9E:CD:6D:9A:DC:F0:5E:2C:12
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS211407.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.101.190.0/24
Signature Algorithm: sha256WithRSAEncryption
08:05:3f:20:b0:77:d9:92:9c:2f:a5:d2:13:49:af:d9:89:be:
82:ac:1e:bb:af:93:2f:5f:d6:d9:4b:a1:31:26:5f:99:d4:d7:
50:c8:30:02:f7:df:ee:32:11:1e:97:12:3c:8f:78:cf:e2:a7:
c3:eb:33:5e:09:05:62:bc:12:0d:c1:22:cd:cd:fd:b1:39:46:
fb:51:c2:dc:63:6d:22:6e:fb:38:38:16:1d:9e:33:23:f8:27:
10:e2:1d:1b:41:b3:b9:31:3b:8a:14:9b:f6:ad:52:70:28:34:
82:7f:e4:1b:e7:e0:01:ec:d9:32:dd:3e:1f:7c:e8:93:96:70:
2a:57:ea:61:0e:66:c4:20:cb:ca:6d:bc:2b:9f:0c:43:dc:16:
80:33:bd:97:42:88:ce:f5:f5:2b:1d:f9:f8:16:37:7a:7a:34:
90:b8:65:e4:c8:fc:61:42:6f:1c:40:b3:76:16:8c:7a:1d:4b:
dd:0f:d5:ec:d3:ed:f2:be:ca:cf:66:92:4e:be:b3:b9:83:52:
01:1a:68:91:7f:d8:c9:1d:d6:3e:03:2c:d9:8c:a2:bb:cf:02:
19:3f:40:40:e9:d1:52:bb:d5:3d:fb:8f:7c:8b:70:95:9a:45:
2f:90:ec:57:c3:84:8a:90:75:2e:f3:3b:ff:a0:40:a2:e9:db:
c9:4b:3d:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:26:27 2025 by rpki-client